Mozilla says that it has received the exploit code for a critical vulnerability which could result in remote code execution on a vulnerable machine.

The vulnerability is in version 3.6 of Mozilla Firefox. Mozilla’s blog says that the issue only affects Firefox 3.6, and not any earlier versions. Thunderbird and SeaMonkey are not affected.

Mozilla also says that users could download Release Candidate builds of Firefox 3.6.2, which contains the fix.

Not being a user of FireFox, it's nice to actually know that they're doing something about these vulnerabilities, so that users could have the best experience possible.

More information about the flaw and a link to the release candidate could be found here.

Feel free to follow me on twitter!